[Cryptography] "Is FIPS 140-2 Actively harmful to software?"
Zooko Wilcox-OHearn
zooko at leastauthority.com
Fri Jun 20 09:55:09 EDT 2014
On Fri, Jun 20, 2014 at 1:00 PM, Jerry Leichter <leichter at lrw.com> wrote:
> He never quite says "yes" but he clearly thinks it.
>
> https://blogs.oracle.com/darren/entry/fips_140_2_actively_harmful
Here are a couple of entries from my blog in which security pros speak
out and say the same thing:
"FIPS and Common Criteria: don't rely on them"
"FIPS and Common Criteria: don't rely on them, part 2"
https://zooko.com/uri/URI:DIR2-MDMF-RO:dwvqalbdt4ax4vgupcewxljg3u:bej7hhojmpuugy77oyydmazf6uu7huiipkctih7adky7e6txavnq/klog.html#[[FIPS%20and%20Common%20Criteria%3A%20don%27t%20rely%20on%20them]]%20[[FIPS%20and%20Common%20Criteria%3A%20don%27t%20rely%20on%20them%2C%20part%202]]
Regards,
Zooko Wilcox-O'Hearn
Founder, CEO, and Customer Support Rep
https://LeastAuthority.com
Freedom matters.
More information about the cryptography
mailing list